Password Managers

What is a Password Manager and Why You Should Use One

LastPass

LastPass Configuration

  • On the Login screen: Uncheck “Remember Email”
  • On the Login screen: Uncheck “Show My LastPass Vault After Login”
  • Under: Preferences > General: enable “Automatically Logoff when all browsers are closed for (mins)” and set the time to 1 min
  • Equivalent Domains: These are different domains that belong to the same entity. Also some Web sites my switch to a different domain for authentication.
    • Go to: My Vault > Account Settings > Equivalent Domains
    • Some “Equivalent Domains” to add to LastPass are:
      • comptia.org, certmetrics.com
      • nysed.gov, ny.gov
      • nycboe.net, nycenet.edu
      • apple.com, icloud.com, itunes.com
  • Make sure to:
    1. Export your encrypted LastPass Vault data on a regular basis: Tools > Export To > LastPass Encrypted File
    2. Download and keep a copy of the current LastPass executable. This will allow you access your exported data, if LastPass.com is not available or you don’t have Internet access.

Bitwarden

  • Store, share, and sync sensitive data.
  • All of your data is fully encrypted before it ever leaves your device, only you have access to it. Not even the team at Bitwarden can read your data, even if we wanted to.
  • Your data is sealed with end-to-end AES-256 bit encryption, salted hashing, and PBKDF2 SHA-256.
  • Bitwarden is 100% open source software. All of our source code is hosted on GitHub and is free for anyone to review.
  • Bitwarden is audited by reputable third-party security auditing firms as well as independent security researchers.
  • Bitwarden does not store your passwords. Bitwarden stores encrypted versions of your passwords that only you can unlock. Your sensitive information is encrypted locally on your personal device before ever being sent to our cloud servers.